CVE-2024-58261 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertPar…
Low CVSS: 2.9

CVE-2024-58261

The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertParser operations that encounter an unsupported primary key type.
Vendor
Sequoia-pgp
Product
Sequoia-openpgp
CWE
CWE-835
Yayın Tarihi
2025-07-27 20:15:24
Güncelleme
2025-08-06 20:59:26
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-835 Sequoia-openpgp LOW Sequoia-pgp 2025

Referanslar

https://crates.io/crates/sequoia-openpgp https://gitlab.com/sequoia-pgp/sequoia/-/issues/1106 https://rustsec.org/advisories/RUSTSEC-2024-0345.html https://gitlab.com/sequoia-pgp/sequoia/-/issues/1106